By: Julien Bastin user 06 Feb 2020 at 7:54 a.m. CST

3 Responses
Julien Bastin gravatar
Hello everyone, I'm a student in Belgium and I'm intern in a company, and I have to make a SSO. So for now, I configured an Active Directory server and a Gluu server, I can authenticate on Gluu server with Active Directory's credentials but with commenting the 3 lines about SSL in the file ** /etc/gluu/conf/gluu-ldap.properties**. My question is how I have to do to use a SSL certificate ? Must I to import the server's certificate (Active Directory) into Gluu server ? But how to do ? Because I can copy a file into a chroot. Maybe I don't understand something. Thank you in advance.

By Julien Bastin user 06 Feb 2020 at 10:15 a.m. CST

Julien Bastin gravatar
Here is a draw

By Michael Schwartz staff 06 Feb 2020 at 8:19 p.m. CST

Michael Schwartz gravatar
Cache Refresh uses trustall by default, so you shouldn't have to import the AD public cert into the Gluu Server java trust store. I'm not sure which three lines you commented out in gluu-ldap.properties.

By Julien Bastin user 06 Feb 2020 at 11:44 p.m. CST

Julien Bastin gravatar
These lines are commented : ``` #ssl.trustStoreFile: /etc/certs/opendj.pkcs12 #ssl.trustStorePin: QoOtWnoHZdbAqfnYOV78LA== #ssl.trustStoreFormat: pkcs12 ``` If I don't comment these lines I can't login with Active Directory credentials.